Of all the areas under his direction - business continuity, GRC, data governance - third-party risk is the most challenging, says Peter Gregory, senior director of cyber GRC at GCI General Communications Inc. "Their breach is my breach," he says, offering mitigation advice.
In 2020, 16 million COVID-19-related threats, including malicious URLs, spam, and malware were detected, according to a Trend Micro report. At the start of the pandemic, many IT and cybersecurity measures were hastily put into place to deal with the crisis. Today, organizations must take stock of these measures, and...
A January 2021 commissioned study conducted by Forrester Consulting on behalf of ServiceNow How a Representative Organization Managed Risk 75% more Efficiently For Front Line and Second Line Employees.
This Forrester Study provides a framework and customer example to help readers evaluate the potential financial...
Security teams and risk professionals consistently ensure the effectiveness of their cyber defense mechanism. The ongoing pandemic has intensified their challenges as they now have to ensure cyber resilience for their organizations in a hostile open environment. As organizations looked to quickly adjust to the new...
As organizations continue to embrace digital technologies, an IT GRC solution will enable organizations and businesses to create and organize GRC policies and controls, and assist organizations keep on top of an increasingly complex and changing regulatory environment. The KuppingerCole Market Compass provides an...
Governance, risk, and compliance (GRC) programs provide organizations the confidence to operate their businesses to drive innovation and competitive advantage without overstepping regulatory bounds. Yet too many organizations lack well-defined GRC programs or neglect funding them. To succeed, organizations must...
Is your team working constantly to discover and patch critical vulnerabilities across your global hybrid-IT landscape? Traditional vulnerability management solutions stop at only identifying vulnerabilities and don’t help with remediation. Security teams would prefer if they can automatically discover and categorize...
More and more organizations are moving their security tools to the cloud. There are best practices to consider to confidently run applications in the cloud and to integrate security into every phase of a cloud journey. Our panel of experts will share their lessons learned on cloud security and tools.
Join this ISMG...
Third party vendors are often the weakest link in your organization’s security ecosystem, since most security leaders do not have good visibility or oversight of their security controls. But as the recent breach of SolarWinds or HAFNIUM has made clear, managing third party risk is now an essential part of your...
The key components of an effective "zero trust" architecture include multifactor authentication, network segmentation and a defense-in-depth approach, says Dr. Erdal Ozkaya, regional CISO and managing director at Standard Chartered Bank in the United Arab Emirates.
Just as it's necessary to think about security before throwing yourself into the clouds when paragliding, the same holds true for large healthcare organizations migrating data to the cloud. Whether it's your first 'flight' in the clouds or you've been gliding for a while, there are security and compliance best...
Even before the pandemic set us on the road to a global recession, many banks were struggling to balance the polarising pressures of a changing world and keeping to business as usual.
The "zero trust" model can play a critical role in mitigating emerging threats. That's why Information Security Media Group will host on Aug. 4 a virtual cybersecurity summit for Southeast Asia on applying the model.
With most employees working at home during the COVID-19 pandemic, it's more important than ever for businesses to ensure that their third-party providers have adequate business continuity plans in place to ensure uninterrupted service, says Srilanka-based Sujit Christy, global CISO at John Keells Holdings.
To ensure data is protected, business units must work closely with IT and security specialists to resolve data governance issues, says Sydney-based Prashant Haldankar, CISO at Privasec.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.